vidar | 385ae35320b34cb36b132d0945a583543b704e4ab65f8e111e72edc9b94f2f46 | Triage

Submit
Reports

Overview

overview

Static

static

1

2f8410c9e4...b3.exe

windows7-x64

2f8410c9e4...b3.exe

windows10-2004-x64

Sharing

General

Target

2f8410c9e4ecb1f13a60c58f52d98db3
Size

810KB
Sample

231231-kngxdsbfcj
MD5

2f8410c9e4ecb1f13a60c58f52d98db3
SHA1

67046fb854573439492ee004e0f010cbef4ae7c6
SHA256

385ae35320b34cb36b132d0945a583543b704e4ab65f8e111e72edc9b94f2f46
SHA512

cc644a667e5cda8dfac8c7d88f27d3b323e54a39edd95eb983f51632765f18b97e0c9dbcd4f844d3bfd97a87dc8b99c29481a9ab555a4d8464f460b641250fe8
SSDEEP

24576:Is8XfeXv6T7YHdmdOF61RR3NQH+J3DR8/RhJ62:fefeXvKsHdyOujm4TKN

Score

10^/10

vidar 921 stealer

Static task

static1

Behavioral task

behavioral1

Sample

2f8410c9e4ecb1f13a60c58f52d98db3.exe

Resource

win7-20231215-en

vidar 921 stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2f8410c9e4ecb1f13a60c58f52d98db3.exe

Resource

win10v2004-20231215-en

vidar 921 stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

39.8

Botnet

921

C2

https://xeronxikxxx.tumblr.com/

Attributes

profile_id
921

Targets

- Target
  
  2f8410c9e4ecb1f13a60c58f52d98db3
- Size
  
  810KB
- MD5
  
  2f8410c9e4ecb1f13a60c58f52d98db3
- SHA1
  
  67046fb854573439492ee004e0f010cbef4ae7c6
- SHA256
  
  385ae35320b34cb36b132d0945a583543b704e4ab65f8e111e72edc9b94f2f46
- SHA512
  
  cc644a667e5cda8dfac8c7d88f27d3b323e54a39edd95eb983f51632765f18b97e0c9dbcd4f844d3bfd97a87dc8b99c29481a9ab555a4d8464f460b641250fe8
- SSDEEP
  
  24576:Is8XfeXv6T7YHdmdOF61RR3NQH+J3DR8/RhJ62:fefeXvKsHdyOujm4TKN
Score

10^/10

vidar 921 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar921stealer

behavioral2

vidar921stealer

© 2018-2024

Terms | Privacy